11 matches found
EUVD-2008-3617
Malware in sbrugna...
libxslt CVE-2019-13118 Stack Buffer Overflow Vulnerability
Description libxslt is prone to a stack-based buffer-overflow vulnerability. An attacker can exploit this issue to obtain sensitive information that may aid in further attacks. libxslt 1.1.33 is vulnerable; other versions may also be affected. Technologies Affected Apple TV Apple Watch Apple iOS ...
多个产品库MP4文件远程拒绝服务漏洞
BUGTRAQ ID: 31957 CNCAN ID:CNCAN-2008102904 多个电话和音频产品使用的库在处理畸形MP4文件时存在问题,可导致应用程序崩溃。 这些产品包括: Apple iPhone Apple iPod touch VideoLan VLC 目前没有详细漏洞细节提供。其他产品也可能受此漏洞影响。 VideoLAN VLC media player 0.9.4 VideoLAN VLC media player 0.9.3 VideoLAN VLC media player 0.9.2 VideoLAN VLC media player 0.9.1 VideoL...
CVE-2008-3631
Application Sandbox in Apple iPod touch 2.0 through 2.0.2, and iPhone 2.0 through 2.0.2, does not properly isolate third-party applications, which allows attackers to read arbitrary files in a third-party application's sandbox via a different third-party application...
CVE-2008-3632
Use-after-free vulnerability in WebKit in Apple iPod touch 1.1 through 2.0.2, and iPhone 1.0 through 2.0.2, allows remote attackers to execute arbitrary code or cause a denial of service application crash via a web page with crafted Cascading Style Sheets CSS import statements...
Design/Logic Flaw
The Networking subsystem in Apple iPod touch 2.0 through 2.0.2, and iPhone 2.0 through 2.0.2, uses predictable TCP initial sequence numbers, which allows remote attackers to spoof or hijack a TCP connection...
Code injection
Application Sandbox in Apple iPod touch 2.0 through 2.0.2, and iPhone 2.0 through 2.0.2, does not properly isolate third-party applications, which allows attackers to read arbitrary files in a third-party application's sandbox via a different third-party application...
Design/Logic Flaw
Use-after-free vulnerability in WebKit in Apple iPod touch 1.1 through 2.0.2, and iPhone 1.0 through 2.0.2, allows remote attackers to execute arbitrary code or cause a denial of service application crash via a web page with crafted Cascading Style Sheets CSS import statements...
Apple iPod Touch 2.1版本之前多个远程漏洞
BUGTRAQ ID: 31092 CVE ID:CVE-2008-3631 CVE-2008-3612 CVE-2008-3632 CNCVE ID:CNCVE-20083631 CNCVE-20083612 CNCVE-20083632 Apple iPod Touch是一款苹果公司发布的MP4播放器。 Apple iPod Touch存在多个安全问题,远程攻击者可以利用漏洞允许用户伪造WEB站点,获得敏感信息及任意代码执行等攻击。 CVE-ID: CVE-2008-3631:...
CVE-2008-3631
Application Sandbox in Apple iPod touch 2.0 through 2.0.2, and iPhone 2.0 through 2.0.2, does not properly isolate third-party applications, which allows attackers to read arbitrary files in a third-party application's sandbox via a different third-party application...
Multiple Vendor DNS Protocol Insufficient Transaction ID Randomization DNS Spoofing Vulnerability
Description Multiple vendors' implementations of the DNS protocol are prone to a DNS-spoofing vulnerability because the software fails to securely implement random values when performing DNS queries. Successfully exploiting this issue allows remote attackers to spoof DNS replies, allowing them to...